you can literally type anything - html, javascript, etc - not much (if anything) gets filtered. the best bit? it's virtually anonymous. you don't have to sign up or be able to leave a comment. stumbled on it by accident. anyways, here's the googledork to find them. loads abound. have fun - responsibly, of course.

I believe it to be poor judgement to post these kinds of things here ... albeit a bit fun ...

I'm pretty sure this is not the idea of this board.

btw whethe or not you have to sign up is irrelevant for annonimity, you need to reroute/encrypt your traffic.

using anonymous proxies, tor, anything else that bounces your connection around enough to prevent your ip to retraced.


to pass signup forms these three urls are inresting
mailinator.com
poolmail.com
bugmenot.com

only thing that could cause a problem are cc numbers, and there are plenty out there in google, that would pass the luhn 10 formula thingies..

the moral of the story - do not employ these things in your websites.

there are a few of these guestbooks that were even present in some myspace profiles. now, in view of the recentmyspace worm (self-replicating code that worked solely on javascript), it would be really foolish to employ such a form of communication on their profile - let alone your website. what makes this particularly bad is that the guestbook entries are hosted on "freeguestbook.net" thus enabling you to bypass all the host's (in this case myspace) filters. that is, if i am correct in my deductions, it allows you to perform xss? *ahem* it's not as if i do these kind of things, i just have a rather keen interest. but thank you kindly rhican. i am a student and i am always eager to learn - albeit from the sidelines

oh, and i use temporaryinbox.com to append to your list of "temporary inboxes". i especially like the firefox plugin these guys provide. their site is only a right-click away. personally, i think the advent of these sites were the best thing since sliced bread

yeah, appended thanx.


btw XSS isn't an issue in the way you describe it afaik. if it's externally hosted, scripts will run under the credentials of freeguestbook.net Hence not pose any additional thread to your website.

That been said, don't use it

have you read the "myspace worm" excerpt? i don't know what else to call it. malcode maybe? but i think it's more than that. yes, maybe xss isn't the correct term to use... ...but i am blonde lol

edit: it's more an issue of exploiting those that are viewing your website, not your website itself. like browser redirection, stealing cookie data etc. hope that makes my point more clear. if you store sensitive data in your website, this could help gain a foothold into your system as you could compromise the security of the current user/viewer's private data. (sadly, as is the case with myspace, the badguys can do a lot of damage to whichever person is logged in and checking your profile)